Cyber Architect - Secret

Role Overview

We are seeking a highly skilled and experienced Cybersecurity Architect with a specialized focus on Cross Domain Solutions (CDS) and Cloud environments. This role demands a deep understanding of CDS architecture, cloud security principles, policy development, hands‑on implementation, and the ability to develop and deliver effective policy and training programs. It also requires being a subject‑matter expert in the application of the Risk Management Framework (RMF) for cloud‑based systems, ensuring compliance with NSA “Raise the Bar” (RTB) requirements.

• Provide guidance for required RMF documentation to successfully assess and authorize cloud technologies and CDS.
• Architect, design, and implement secure CDS solutions, ensuring compliance with NSA RTB requirements and best practices.
• Provide expert guidance on CDS accreditation processes and data flow security.
• Evaluate and recommend CDS technologies and configurations to meet specific mission requirements while maintaining a high security posture.

• Design, implement, and secure cloud environments (e.g., AWS, Azure Government, DAF Cloud Works) in accordance with RMF, FedRAMP, DoD SRG, and NSA RTB guidelines.
• Develop secure cloud network architectures, identity and access management (IAM) strategies, data encryption solutions, and security monitoring within cloud platforms.
• Provide guidance on secure cloud migration strategies and container security.

• Develop, write, and refine cybersecurity policies, standards, and procedures specifically tailored for CDS and cloud environments, ensuring alignment with NSA RTB and other relevant government regulations.
• Translate complex security requirements into actionable policy and guidance for technical teams.
• Lead and execute all phases of the RMF process (Categorization, Selection, Implementation, Assessment, Authorization, Monitoring) for CDS and Cloud systems, ensuring strict adherence to NIST SP 800‑37, CNSSI 1253, ICD 503, and NSA RTB requirements.
• Oversee and actively participate in the implementation of security controls and countermeasures for CDS and cloud systems.
• Provide technical guidance and support to engineering teams to ensure secure system design and configuration.
• Design, develop, and deliver comprehensive training programs and materials on RMF, CDS security, cloud security best practices, and NSA RTB requirements.

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• 8+ years of experience in cybersecurity, with at least 5 years directly focused on RMF implementation and accreditation.
• 3+ years experience designing, architecting, and implementing Cross Domain Solutions.
• 3+ years experience securing cloud environments (e.g., AWS Gov Cloud, Azure Government) at an enterprise level.
• Proven experience in writing and implementing cybersecurity policies and procedures specific to CDS and cloud.
• Experience in developing and delivering technical training programs.
• In-depth understanding of NIST SP 800‑37, CNSSI 1253, NIST SP 800‑145, DoD Cloud Computing SRG, ICD 503, DoDI 8540.01, and other relevant government cybersecurity frameworks.
• Hands‑on experience with security tools for vulnerability scanning, penetration testing, and security monitoring in cloud environments.
• Excellent written and verbal communication skills, with the ability to articulate complex technical concepts to diverse audiences.

• CISSP (Certified Information Systems Security Professional)
• CCSP (Certified Cloud Security Professional)
• CASP+ (CompTIA Advanced Security Practitioner)
• AWS Certified Security – Specialty
• Azure Security Engineer Associate
• Relevant vendor‑specific CDS certifications

Secret clearance is required for start.

Work location:

Lexington (Wood Street & Forbes facilities). Onsite, 5 days per week.

Interview process: 2 rounds of Zoom interviews.

Full‑time, weekly hours: 40 hours per week.

Will this position materially impact the conduct or direction of a research program(s)? No.